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(5 4) MOBILE COMMUNICATION METHOD AND MOBILE COMMUNICATION SYSTEM 

£g7)Abstract: 

ppOBLEM TO BE SOLVED: To provide a mobile communication 
5 ystem where the start of communication between a mobile station 
0O d a stationary station is quickened and a key in use is quickly and 
se curely switched against an illegal use of an encryption key or the 
like- 

50L- UTI0N: Common keys with plural versions are available for 
en cryP tion communication between a stationary station and plural 
^bile stations, each mobile station 1 manages a sole key version 
ar) d i ts symmetrical key (ordinary key and emergency key) in a form 
0 f key information DB 6, and the stationary station 2 manages plural 
versions and their symmetrical keys in a way of key information 
management DB 12. The mobile station 1 sends a key version of its 
0 wn station on a communication request, the stationary station 2 
^criminates whether or nor a usual key of the received key version 

effectively supported and replies the version and the key 
application (normal), when it is effectively supported. When the 
uS ual key is invalid, the stationary station 2 replies the version and 
th e key application (urgent). The mobile station 1 discriminates the 
l< e y v ersion and the key application replied from the stationary 
sta tion 2 and switches the key used by its own station into the 
urge nt key, even if the key version is the same when the key 

plication is the 'urgent key'. 
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# NOTICES * 

,p0 and NCIPI are not responsible for any 
Vantages caused by the use of this translation. 

, 1 finis document has been translated by computer. So the translation may not reflect the original precisely. 
2 shows the word which can not be translated, 

g'jp the drawings, any words are not translated. 



j- 0 |aim(s)] 

r C \a\rc\ 1] In the mobile correspondence procedure whose common use of two or more versions of said key enables 
t he share ° f the key (cyptographic key) used for encryption or a decryption of the bidirectional 
cry ptocommunication of a fixed station and a mobile station with two or more mobile stations, and is enabled While a 
rTiob ile station transmits the version of the usable cryptographic key of a local station to the communication link 
der nand to a fixed station Check that this version is contained in a response from a fixed station, and as for a fixed 
sta tion, the receiving version from a mobile station confirms whether it is contained in the key information which a 
|oCa | station manages. It is the mobile correspondence procedure characterized by matching and managing the 
jde ntifier and its key used of the mobile station concerned during a communication link while answering the mobile 
sta tion which determined the version concerned as the key used and sent said communication link demand when 
c0n tained. 

rclaim 2] It is the mobile correspondence procedure which a fixed station answers a mobile station in claim 1 in the 
version of the one or the dummy of key information effective when the receiving version from a mobile station is not 
cC , n tained in the key information which a local station manages, and is characterized by the mobile station 
c0n cerned broadcasting the communication link demand by it again when the response version from a fixed station 
. ^sable at a local station. 

l- c iaim 3] In the mobile correspondence procedure whose common use of two or more versions of said 
cry ptographic key enables the share of the cryptographic key used for encryption or a decryption of the 
bic |irectional cryptocommunication of a fixed station and a mobile station with two or more mobile stations, and is 
en abled Each mobile station and a fixed station the cryptographic key of the usable version of a local station 
reS pectively Usually, while it manages with the key (they are usually a key and an alternative key) of the pair' 
c0 rresponding to the key application business and for an alternative and a mobile station transmits the version of 
th e u sable cryptographic key of a local station to the communication link demand to a fixed station When the 
version and key application which are included in a response from a fixed station are checked, the version of a 
response is the same as that of a local station and a key application is usually business It is confirmed whether the 
cry ptographic key used for the communication link of a local station is included in said two or more versions to 
^ hich a local station manages [ the receiving version from a mobile station ] a fixed station by usually considering 
g5 a s L key J. While effective/invalid of said usual key are checked, and usually determining a key as the key used 
an d answering the mobile station concerned which sent said communication link demand in a version and a key 
application (usually business) concerned when effective when contained The mobile correspondence procedure 
characterized by matching and managing the identifier and its key used of the mobile station concerned during a 
c0(T1 rnunication link. 

(•Claim 4] As for a fixed station, the receiving version from a mobile station is contained in the version which a local 
stat ion manages in claim 3. And when [ said ] a key is usually an invalid By determining a key and the alternative key 
^ hic h makes a pair concerned as the key used, while answering the mobile station which sent said communication 
|jnk demand in a version and a key application (for an alternative) concerned, usually It is the mobile correspondence 
procedure characterized by matching and managing the identifier and its key used of the mobile station concerned 
du ring a communication link, for the mobile station concerned making the usual key of a local station an invalid from 
a fixed station when the key application of a response is an object for an alternative, and using as the key used of 
the cryptocommunication of a local station the alternative key which makes it and a pair. 
["Claim 5] I n the mobile correspondence procedure whose common use of two or more versions of said 
cr yptographic key enables the share of the cryptographic key used for encryption or a decryption of the 
bidirectional cryptocommunication of a fixed station and a mobile station with two or more mobile stations, and is 
en abled Each mobile station and a fixed station the cryptographic key of the usable version of a local station 
respectively Usually, while it manages with the key (they are usually a key and an alternative key) of the pair' 
corresponding to the key application business and for an alternative and a mobile station transmits the version and 
key application (usual or alternative) of an usable cryptographic key of a local station to the communication link 
demand to a fixed station The version contained in a response from a fixed station is checked. When the version of 
a response is the same as that of a local station Use the cryptographic key of a key application which transmitted 
from the local station, and when the version which received from the mobile station is contained in two or more 
versions which a local station manages, a fixed station If the received key application is usual, usually check 
e ff e ctive/invalid of a key, and when effective, while answering the mobile station which sent said communication link 
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Remand, said version which said alternative key was determined as the key used in the case of the invalid, and 
usually received the key The mobile correspondence procedure characterized by matching and managing the 
jde ntifier and its kev used of the mobile station concerned during a communication link. 

£Cla im 6 1 h is the mobile correspondence procedure characterized by the thing [ usually repealing a key ] concerned 
in claims 3, 4, or 5 when the key application modification directions of said version as which management of 
effective/invalid of a key was usually specified from high order equipment in a fixed station are received. 
£Cla im 7 ) lt has the fixed station which has a communications processing means and encryption / decryption 
processing means, and two or more mobile stations which are carried on a mobile and have a communications 
processing means and encryption / decryption processing means. In the mobile communication system whose 
c0 rnmon use of two or more versions of said cryptographic key enables the share of the cryptographic key used for 
the bidirectional cryptocommunication of a mobile station and a fixed station with two or more mobile stations, and 
j£ _ enabled a mobile station While transmitting the key version of a local station to the key version used for the 
communication link of a local station, the key information database which stores the key information containing a 
Key. and tne communication link demand to a fixed station A key management processing means to manage the key 
oS ed of a local station in contrast with the key version contained in a response from a fixed station is established. A 
fixed station Two or more key versions used for the communication link with a mobile station, and the key 
jr) f 0 rmation management database which stores the key information containing the key, When the key version which 
re ceived from the mobile station is contained in said key information management database, the key of the key 
version concerned is determined as the key used. Mobile communication system characterized by forming the 
communication link key information database which matches and manages a key supervisory control processing 
means to answer a mobile station in the key version concerned, and the identifier and its key used of a mobile 
sta tion under communication link. 

r_Glaim 8] In claim 7, a fixed station and a mobile station usually contain the key application of a /alternative, the 
oS ua\ key of a corresponding pair, and an alternative key for every key version as said key information. To a fixed 
s tation It has the function manager which makes an invalid use of the usual key of an applicable key version with the 
Key application modification directions from a high order. Said key supervisory control processing means of a fixed 
s tation When the usual key of the key version which received from the mobile station is an invalid, determine a pair 
0 f alternative key as the key used, and a mobile station is answered in the key version and key application 
(alternative). Said key management processing means of a mobile station is mobile communication system 
c haractenzed by making the usual key of a key information database into an invalid from a fixed station when the 
^ey application of a response is an object for an alternative. 

[Claim 9 J ,n claim 7 > a mobile station usually contains the key application of a /alternative, the usual key of a 
corresponding pair, and an alternative key for every key version as said key information. A fixed station contains the 
oS ua\ key which serves as the usual key application for every key version as said key information. And while the key 
^rsion and key application by key application modification directions receive and manage a substitute alternative 
Key from a hign order ' has the function manager concerned which usually makes use of a key an invalid. When the 
uS ual key of the key version which received from the mobile station is an invalid, said key supervisory control 
processing means of a fixed station determines said alternative key as the key used, and answers a mobile station in 
the key version and key application (alternative). Said key management processing means of a mobile station is 
^cbile communication system characterized by making the usual key of a key information database into an invalid 
f r om a fi) <ed station when the key application of a response is an object for an alternative. 
[Claim 10] Said mobile station is the communication device with which said mobile communication system is an 
electronic toll collection system of a turnpike, and said fixed station is prepared in a tollgate or a road side in claims 
7i 8, or 9, and mobile communication system constituted by the communication device carried in the car using a 
turnp'ke- 

[Translation done.] 
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fpetailed Description of the Invention] 
[0001] 

rpjeld of the Invention] Especially this invention relates to the mobile communication which manages a cryptographic 
Key to an alteration-proof secretly between a fixed station and a mobile station about the cryptocommunication 

[Description of the Prior Art] The spread of the mobile communication by the cellular phone or the land mobile 
radiotelephone is remarkable, and utilization of the electronic toll collection system (ETC) of a turnpike etc. is also 
jn n earness. The electronic toll collection system of a turnpike is a system which **** a tariff using radio between 
tri e point-to-point-communication means (fixed station) installed in the tollgate road side, and the migration means 
0 f communications (mobile station) carried in the car which runs a turnpike. In the accounting of ETC, since 
.formation about individual privacy, such as a user's authentication, deposit information, etc., is transmitted and 
received on radio, in order to prevent leakage of these information, and an alteration, reservation of the security 
^ n jch used cryptocommunication becomes indispensable. 

[ 0 003] The key information for enciphering a plaintext and decrypting a cipher for prevention of the nondisclosure of 
the contents of a communication link or an alteration, is used, for example, like a publication on "the "internet 
security" foundation and a cure technique (work besides Ryoichi Sasaki, Ohm-Sha, pp 95-102)" The "key 
en cryP tion key" called KEK (Key Encrypting Key) is beforehand set up between a transmitting person and an 
ada Yessee. A transmitting person enciphers the "data encryption key" called DEK (Data Encrypting Key) which 
en cipr> ers data using this KEK, and transmits to an addressee, and an addressee decrypts DEK using KEK and is 
decoding the cipher using DEK. 

[0004] Moreover, a transmitting person receives an addressee's public key, sends DEK which enciphered this public 
ke y as KEK to an addressee, and also has a method of sharing DEK between a transmitting person and an 
addressee. Management of these encryption key has an approach by the card, and there are also deterioration of 
|<ey information and risk of loss. Generally, it has managed for every mobile station by the key server. 
[0005] The procedure of the cryptocommunication of the mobile station which uses a key server for drawing 1 1 , 
an d a station is shown. The key server has managed the key K1 of a mobile station A, the key K2 of a mobile 
station B, and the key of a total displacement station on the key managed table. When the mobile station A holding a 
Key K1 communicates with a fixed station, the communication link demand by the identifier of the ** mobile station 
A is published. ** In a fixed station, answer a key server in the key of a mobile station A, and an inquiry and ** key 
ser ver answer a fixed station in the key K1 of a mobile station A. ** A fixed station performs cryptocommunication 
t0 a mobile station A using a key K1 (or key K1 1 which generated data K1 as the species), and the ** mobile station 
A decodes a cipher using a key K1 (or key K11 decoded from data K1), and communicates with a fixed station by 
tn e cipher using a key K1 (or key K1 1). 

[0006] In addition, key information is upgraded periodical or if needed, in order to prevent the unauthorized use by 
leakage (tapping and decode). The key information which a key server manages is a key common to the key or 
mobile station of a proper to a mobile station, and, in the case of the latter, a key version in use for every mobile 
station is managed. That is, proper information or version information is sufficient as the keys K1 and K2 illustrated 
t0 drawing 9 . 
[0007] 

[p r oblem(s) to be Solved by the Invention] As mentioned above, since time amount is taken by the communication 
|ink initiation between a mobile station and a fixed station since a fixed station carries out the inquiry of the key 
uS ed at every communication link demand from a mobile station to a server, and the key information on KEK or DEK 
js directly transmitted to a fixed station from a server by the method which manages the key information on 
cr yptocommunication by the key server, the risk of leakage is also high. 

[0008] Especially, in ETC, in order to prevent the interference of a wireless electric wave used for tariff **♦*, it is 
ne cessary to set up a communication region narrowly. On the other hand, since the car which performs an 
electronic fee collection sytem serves as employment which passes a tollgate, without stopping, the time amount in 
wn ich the communication link between a fixed station and a mobile station is possible is very short. For example, 
wn en a car runs a 4m communication region at the high speed of 180 km/h, the time amount which can 
communicate is only 80ms. Since the high-speed response between a car and a tollgate is difficult and tariff **** by 
h igh-speed passage becomes impossible, it stops therefore, being useful to a delay dissolution in a tollgate by the 
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l <e y management method by the server. 

[-0009] However, a fixed station is unable to manage the key information on many and unspecified mobile stations 
jrlS tead of a server in a Prior art. Since each mobile station does not understand whether it advances to which 
to He ates a " over ^ country, and a communication link is started, each fixed station is because management of the 
l<ey information on a total displacement station is needed. Even when a mobile station uses a common key, since the 
HeV version of a mobile station is updated at the time of each automobile inspection etc., it is necessary to apply 
possible [ common use of two or more key versions ], and management of a fixed station becomes difficult. 
(-001°] Moreover, when an unauthorized use is revealed in a key version in use, even if it can do the immediate 
s teP s to a mobile station with damage, they cannot respond immediately to many other mobile stations which are 
uS ing the ke y version, but have a possibility that damage may be expanded. 

[001 1] Tne Purpose of this invention is to offer the migration correspondence procedure which the trouble of mobile 

c0 mmunication including the conventional cipher can be conquered, and the risk of leakage of key information can 

s tart a communication link by high response few, or can perform renewal of a key in emergency easily. 

rpOl 2] Moreover, it is in offering the unnecessary simple migration communication system of high security of a key 

server. Furthermore, it is in offering the electronic toll collection system of the turnpike as for which tariff collection 

(accounting) is made for a short time (under high-speed passage) certainly 

[0 013] 

rjvleans for Solving the Problem] This invention for attaining the above-mentioned purpose enables the share of the 
Ke y (cryptographic key) used for encryption or a decryption of the bidirectional cryptocommunication of a fixed 
sta tion and a mobile station with two or more mobile stations. And in the mobile correspondence procedure whose 
c0 rr>mon use of two or more versions of said cryptographic key is enabled, while a mobile station transmits the 
ver sion of the usable cryptographic key of a local station to the communication link demand to a fixed station Check 
tha t this version is contained in a response from a fixed station, and, as for a fixed station, the receiving version 
f r om a mobile station confirms whether it is contained in the key information which a local station manages. When 
c0 ntained, while answering the mobile station which determined the version concerned as the key used and sent 
sa id communication link demand, it is characterized by matching and managing the identifier and its key used of the 
^obile station concerned during a communication link. 

[001 4 ] Tne above-mentioned fixed station answers a mobile station in the version of the one or the dummy of key 
.formation, when the receiving version from a mobile station is not contained in the key information which a local 
station manages, and when the mobile station concerned has an usable response version from a fixed station at a 
local station, it is characterized by broadcasting a communication link demand again by using the version of this 
reSP onse as the key used. Consequently, by the fixed station, the version of resending is accepted in the key used 
an d managed during a communication link. 

[0015] Since according to this invention a fixed station can share two or more key versions of a common key 
without derangement among two or more mobile stations and the key used can be determined for fixed-station 
its elf a communication link can be started immediately. 

roOl6] Each mobile station and a fixed station this invention moreover, the cryptographic key of the usable version 
of a local station, respectively Usually, while it manages with the key (they are usually a key and an alternative key) 
0 f the pair corresponding to the key application business and for an alternative and a mobile station transmits the 
version of the usable cryptographic key of a local station to the communication link demand to a fixed station When 
the version and key application which are included in a response from a fixed station are checked, the version of a 
r espon se is the same as that of a local station and a key application is usually business It is confirmed whether the 
cry ptographic key used for the communication link of a local station is included in said two or more versions to 
whlc h a local station manages [ the receiving version from a mobile station ] a fixed station by usually considering 
aS as [ key ]. While effective/invalid of said usual key are checked, and usually determining a key as the key used 
a pd answering the mobile station concerned which sent said communication link demand in a version and a key 
application (usually business) concerned when effective when contained It is characterized by matching and 
m anag ir1 g the identifier and its key used of the mobile station concerned during a communication link. 
[OOI 7 ] As for the above-mentioned fixed station, the receiving version from a mobile station is contained in the 
ve rsion which a local station manages. Moreover, when [ said ] a key is usually an invalid, [ and ] By determining a 
key and the alternative key which makes a pair concerned as the key used, while answering the mobile station which 
se nt said communication link demand in a version and a key application (for an alternative) concerned, usually It is 
characterized by matching and managing the identifier and its key used of the mobile station concerned during a 
c0 mnfi unication link - for th e mobile station concerned making the usual key of a local station an invalid from a fixed 
station, when the key application of a response is an object for an alternative, and using as the key used of the 
cr yptocommunication of a local station the alternative key which makes it and a pair. 

[0018] Furthermore, when said key application modification directions of a version in the above-mentioned fixed 
station with which management of effective/invalid of a key was usually specified from high order equipment are 
received, it is characterized by the thing [ usually repealing a key ] concerned. 

[0019] Since according to this invention on-line processing of the change in the alternative lock which makes the 
uS ual key of a key version an invalid and each mobile station holds can be carried out under communication link, 
wit hoiit transmitting a cryptographic key when an unauthorized use is revealed, urgent correspondence can perform 
t0 high security. In addition, below, the method by the pair of a key and an alternative key (an example urgent key) is 
uS ually called a symmetry key cipher system. 
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[0020] In addition, the version and key application of a key which are used for a communication link demand by the 
local station from a mobile station above are transmitted, and only the version which opted for use by the fixed 
station may be made to answer. According to this, key decision processing of a fixed station is simplified further. 
[0021] The mobile communication system of this invention which applies the above-mentioned mobile 
correspondence procedure It has a fixed station and two or more mobile stations carried on a mobile. A mobile 
station While transmitting the key version of a local station to the key version used for the communication link of a 
local station, the key information database which stores the key information containing a key, and the 
communication link demand to a fixed station A key management processing means to manage the key used of a 
local station in contrast with the key version contained in a response from a fixed station is established. A fixed 
station Two or more key versions used for the communication link with a mobile station, and the key information 
management database which stores the key information containing the key. When the key version which received 
from the mobile station is contained in said database, the key of this key version is determined as the key used. It is 
characterized by forming the communication link key information database which matches and manages a key 
supervisory control processing means to answer a mobile station in the key version concerned, and the identifier 
and its key used of a mobile station under communication link. 

[0022] A fixed station and a mobile station usually contain the key application of a /alternative, the usual key of a 
corresponding pair, and an alternative key for every key version as said key information. Moreover, to a fixed station 
It has the function manager which makes an invalid use of the usual key of an applicable key version with the key 
application modification directions from a high order. Said key supervisory control processing means of a fixed 
station When the usual key of the key version which received from the mobile station is an invalid, determine a pair 
of alternative key as the key used, and a mobile station is answered in the key version and key application 
(alternative). It is characterized by said key management processing means of a mobile station making the usual key 
of a key information database an invalid from a fixed station, when the key application of a response is an object for 
an alternative. 

[0023] Or a fixed station is characterized by coming to have the function manager concerned which usually makes 
use of a key an invalid, while the according [ usually including only a key ] to the key application modification 
directions from high order key version which serves as the usual key application for every key version as said key 
information, and a key application receive a substitute alternative key and managing. 

[0024] The example of 1 application of the above-mentioned mobile communication system is the electronic toll 
collection system (ETC) of a turnpike, and the communication device with which a fixed station is prepared in a 
tollgate or a road side, and a mobile station are constituted as a communication device carried in the car using a 
turnpike. 

[0025] High security is securable while a system configuration simplifies, since the mobile communication system of 
this invention makes a key server unnecessary. Moreover, since the high— speed processing of the communication 
link between a fixed station and a mobile station can be carried out, the processing time of ETC of a turnpike is 
shortened and tariff **** in high-speed passage becomes possible. 
[0026] 

[Embodiment of the Invention] Hereafter, the migration correspondence procedure by 1 operation gestalt of this 
invention and its system are explained to a detail, referring to a drawing. In addition, the same sign is given to the 
equivalent component through each drawing. 

[0027] The configuration of the outline of the electronic toll collection system of the turnpike which applies this 
invention to drawing 10 is shown. The fixed station 100 of ETC arranged in the tollgate enciphers and carries out 
the radio traffic of the confidential information through the antenna 110 installed in the upper part or the flank of 
the lane 200 only for automatic tariffs between the mobile stations 310 which the car 300 which advanced into the 
communications area 210 shown with a broken line carries, carries out automatic collection of the tariff, and reports 
it to high order equipment. 

[0028] Extension of the communications area 210 which an antenna 110 covers is at most several m, in order to 
prevent interference with other vehicle. For this reason, communication must be ended in the mobile station 310 of 
the car passed at high speed, and about 0.1 seconds or less, and a high-speed response is needed for the 
cryptocommunication between a fixed station 100 and a mobile station 310. 

[0029] Drawing 1 is the block diagram of the migration communication system by one example of this invention. It 
consists of a communication device (mobile station) 1 carried in the mobile, a communication device (fixed station) 2 
installed in the road side which communicates with a mobile station 1, and a channel 3 which contracts a mobile 
station 1 and a fixed station 2. Although a channel 3 does not ask wireless and a cable, it is based on the wireless 
through an antenna by this example. Below, although the cryptocommunication between a mobile station 1 and a 
fixed station 2 is explained, also when enciphering only confidential information and combining with a plaintext, it 
contains. Moreover, although the key for encryption/decryption points out above-mentioned "a data encryption key 
(DEK)", "a key encryption key (KEK)" may be used. 

[0030] The decision of the key which a mobile station 1 reads the key related information from the fixed station 2 
accumulated in DB4 for a communication link which is storing the transmit information, receipt information, and key 
related information (a key is not included) of a plaintext, and DB4 for a communication link, and is used for the 
communication link with a fixed station 2, The key of the key information DB6, and the transmit information of DB4 
for a communication link and the key information DB6 that the key information containing the key (symmetry key) 
used for the key management processing section 5, the encryption, or the decryption which updates key information 
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on the key information DB6 (a key is included) is stored is read. The encryption processing section 7 which makes 
transmit information a c.pher, the communications processing section 8 which transmits this cipher to a channel 3 
and receives a cipher from a channel 3 again, and the cipher received from the channel 3 are decoded using the key 
of the key information DB6. It consists of the decryption processing section 9 which stores the receipt information 
of the decrypted plaintext in DB4 for a communication link, and the control processing section 10 which controls 
starting of these each part 

[0031] A fixed station 2 A cipher from a channel 3 The communications processing section 8 which receives or 
transmits, the decode processing section 9 which decrypts the received cipher using the key read from the key 
information DB13 from the transmitting way 3, DB1 1 for a communication link which stores the decrypted receipt 
information and the transmit information of a plaintext, and all the key information supported by the 
cryptocommunication of a fixed station 2 The receipt information of a mobile station 1 is read from the key 
information management DB12 to store, the key information DB13 which stores the key used for every mobile 
station under communication link, and DB11 for a communication link. Contrast the key related information from a 
mobile station 1, and the key information registered into the key information management DB12 and 
effective/invalid of the key of a mobile station are judged. The key used stored in the key supervisory control 
processing section 14 which stores in DB11 for a communication link the key related information which answers a 
mobile station according to a judgment result, and the key information DB13 is used. It consists of the encryption 
processing section 7 which enciphers the transmit information which transmits to a mobile station, and the control 
processing section 16 which starts processing of these each part. 

[0032] Below, the example by the symmetry key cipher system explains actuation of each part to a detail The 
configuration of the key information database of a mobile station is shown in drawing 2 . In the case of a symmetry 
ke y cipher system, the key information stored in the key information DB6 consists of effective flags 24 which show 
effective/invalid of the key (symmetry key) 23 used for the key application 22, the encryption, or the decryption 
w hich shows the usual or urgent application of the key version 21 which a mobile station uses, and a symmetry key 
and £, e 1 5 ymmet 7 key „ 23 " An 'Went" key "K1" is registered [ a key application ] into a version "VI" for a usual ' 
key K1 and a usual key application, and the example of illustration is both "effective." 

[0033] The configuration of the key management information database of a fixed station is shown in drawing 3 The 
key information management DB12 consists of effective flags 24 which show the hysteresis of one or more key 
versions which a fixed station 2 supports, usually reach every key version 21 and show effective/invalid of the 
urg ent key application 22 and an urgent key (symmetry key) 23, and a symmetry key. The symmetry key K2 and K2' 
are registered into a version V1 by the symmetry key K1, K1\ and the version V2, and the example of illustration is 
supported effectively altogether. 

[0034] The configuration of the key information database of a fixed station is shown in drawing 4 The key 
information management DB13 manages correspondence of the key 32 (key 23) used used for the communication 
| ink with the mobile station identifier 31 which received from the mobile station under communication link and this 
mobile station in order of reception. Correspondence of the mobile station which reception ended is eliminated from 
D B13, and the order of management is updated. Thereby, the communication link by version which is different from 
tvv o or more mobile stations in coincidence is attained. 

[0035] The flow of key decision processing of the symmetry key cipher system in a mobile station used is shown in 
drawing_5 . The key management processing section 5 makes the key decision of a mobile station 1 under the 
control processing section 10 at the time of communication link initiation with a fixed station 2, and the processing 
at the time of a communication link and renewal of key urgent is usually included. 

[0036] The key management processing 5 reads the key version currently supported from the key information DB6 
(s1 01), and wntes this version in the area of the key related information of DB4 for a communication link (S102) 
With the message (the identification information of a mobile station is included) of a communication link demand key 
related information (here key version) is transmitted to a fixed station 2 from the communications processing 
section 8 Then the key management processing 5 waits for reception of the key related information from a fixed 
station 2 (SI 03). The key related information (here, they are a key version and a key application) which received 
from the fixed station 2 is read from DB4 for a communication link (S104), and it judges whether the key version is 
supported by the local station (S105). When the key version from a fixed station 2 is not supported by the local 
station, the notice of abnormalities is published to the control processing section 10 (S106), and processing is 
ended. 

[0037] When in agreement with the key version which transmitted from the local station when the key version from 
a f ix ed station 2 is supported by the local station that is, it judges whether the key application 22 from a fixed 
station 2 is urgent (SI 07). Since a key application is "usual" if not urgent, it is the usual communication link which 
uses the usual key of a local station, and processing is ended as it is. On the other hand, since the usual key of a 
| oca | station cannot be used when the key application 22 from a fixed station is "urgent", while using the key used 
as an urgent key, the effective flag 24 of the usual key in the key information DB6 is updated to an invalid (SI 08) 
Consequently, an urgent key is used for encryption/decryption of henceforth in the mobile station concerned 
[0038] The flow of the key decision processing used in a fixed station is shown in drawing 6 . The key supervisory 
control processing section 14 in which the fixed station 2 was started by the control processing section 15 to the 
communication link demand from a mobile station 1 determines the key used for every mobile station with a 
symmetry key cipher system. 

[0039] The key supervisory control processing 14 reads the version of the key related information which received 
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with the communication link demand from a mobile station 1 from DB11 for a communication link (S201), and checks 
the support of the key version which searched the key information management DB12 and received. That is, it 
judges whether the usual key of the version of a mobile station 1 is effective, or an urgent key is still more effective, 
if it judges and the key is usually invalid (S202). 

[0040] When the usual key of the version which received is effective, this usual key is determined as the key used, 
and it matches with the identifier of the mobile station concerned, and registers to the key information DB13 (S203). 
Furthermore, a key application (usually) is added to the key version which received from the mobile station 1 
previously as key related information which transmits to a mobile station 1, it writes in DB1 1 for a communication 
link (S206), and processing is ended. Moreover, a key is usually invalid, and when an urgent key is effective, the 
urgent key of the key version which received is determined as the key used (S204), and it registers to the key 
information DB13. 

[0041] Furthermore, when both the usual keys and urgent keys of a key version that were received are invalids, a 
mobile station is usually answered in the key version currently supported by the fixed station 2, version of the key 
used which selected the key in the lock used (S205), and selected, and key application. When the mobile station is 
supposing the version from a fixed station, it is resending this version with a communication link demand, and a 
series of above-mentioned processings are repeated, the usual key of the version concerned is determined as key 
used, and a communication link becomes possible. 

[0042] However, management which supports the only version is performed and the usual mobile station makes the 
earlier version the invalid with updating to an upgrade product. In such a case, it judges with key decision processing 
of a mobile station 1 having no support (S105), and a communication link is closed. Therefore, when both the 
symmetry keys of the key version which received from the mobile station, without performing processing S205 are 
invalids, a dummy version may be made to only answer in key decision processing of a fixed station 2. 
[0043] The flow of processing between the mobile station in the case of usually determining the key used as drawing 
7 by communication link and a fixed station is shown. From ** key information DB6, the key management processing 
section 5 of a mobile station 1 reads that the key version which a local station supports is VI, and transmits a 
version V1 to the ** fixed station 2 with the message (Nxx1 containing an identifier) of a communication link 
demand. ** The key supervisory control processing section 14 of a fixed station 2 searches the key management 
information DB12 using the version V1 which received from the mobile station 1, and checks whether the version V1 
is supported. ** If the support of a version V1 is checked, the usual key K1 of a version VI will be determined as 
the key used, and it will match with the identifier (Nxx1) of the mobile station concerned, and will register to the key 
information DB13. moreover, ** — the key related information which consists of a version V1 and a key application 
(usually) is transmitted to the mobile station concerned. In addition, key related information may be enciphered by 
communication link [ for the key decision of a mobile station 1 and a fixed station 2 ] **, and **. 
[0044] The key management processing section 5 of a mobile station 1 checks the version V1 and use of the usual 
key K1 of a local station by the key related information from a fixed station 2. Next, the ** mobile station 1 reads 
the transmit information of a plaintext into the cipher-processing section 7 from DB4 for a communication link, and 
enciphers it using the key K1 used read from the key information DB6. For example, in the ETC system of a 
turnpike, an IC card number, a balance frame, etc. for tariff dropping [ lengthen ] are enciphered and transmitted. 
And a cipher is transmitted to a fixed station 2 from ** communications processing section 8. ** The decode 
processing section 9 of a fixed station 2 decodes the received cipher to a plaintext with the key K1 corresponding 
to the identifier (Nxx1) of the key information DB13. 

[0045] Since according to this it is only the processing which determines the key used between fixed stations by 
the communication link demand of a mobile station and the communication link between both can begin immediately, 
communication link time amount can apply also to the ETC system of the turnpike restricted to about 0.1 or less 
seconds. Moreover, the key used itself used for encryption/decryption is not included in key related information, but 
since it does not communicate, the high security of a system is securable. 

[0046] The flow of processing between the mobile station in the case of determining the key used as drawing 8 by 
renewal of key urgent and a fixed station is shown. The key management processing section 5 of a mobile station 1 
is usually the same as that of the case of a communication link until it reads the version V1 by which effective 
management is carried out to ** key information DB6, it transmits to the ** fixed station 2 with a Request-to-Send 
message and the key supervisory control processing section 14 of the ** fixed station 2 checks the support of a 
version VI. ** the result of a check — the usual key K1 of a version VI — invalid and urgent key KT — case it is 
effective — urgent key K1' of a version VI — the key used — determining — the identifier (Nxx1) of the mobile 
station concerned — matching — the key information DB13 — registering — ** — transmit the key related 
information which consists of a version V1 and a key application (urgent) to the mobile station concerned. 
[0047] The key management processing section 5 of a mobile station 1 will make an invalid the effective flag of the 
usual key K1 of the key information DB6, if the invalid of the usual key K1 of a local station is got to know by the 
key application from the ** fixed station 2. The cipher-processing section 7 uses K1' effectively managed for the 
key information DB6 on the occasion of encryption of a plaintext. After transmission (**) of the cipher from a mobile 
station 1 to a fixed station 2, it is usually the same as that of the case of a communication link. In addition, if a key 
application is included in a fixed station 2 with a key version from a mobile station 1 at the key related information 
of a communication link demand, the key decision processing by the side of the fixed station which is using the 
urgent key can be simplified. At this time, the key related information which answers from a fixed station 2 to a 
mobile station 1 is good only at a key version. 
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C Ud dLtll J 7 h anag6me fi nt ° f ^ect,ve/invalid of a key is usually performed from high order equipment by the 
jnva l-d directions to the specfic key version in a fixed station. That is, by the central apparatus which liquidate the 
USe mo« fi-Id 7t S ? 'u 7 faCt ° f impossible instantaneous use was physically detected from two 

or more fixed stations to one mobile station, or when there is a complaint statement from a user, it judges that the 
unauthorized use occurred and the invalid of a key is usually directed. 

[0049] The processing flow of nullification of the usual key in a fixed station is shown in drawing 9 The key 
supervisory control processing section 14 usually has the processing facility of key nullification besides the 
processing facility ( drawing 6 ) of the communication link key decision mentioned above. First, it waits for reception 
of the key application modification directions from high order equipment (S301). If modification directions of the key 
application which specified the key version are received from high order equipment, the usual key of the specified 

VerS r a r!r^ ll a ^noTrl d ; and ?' effeCtiVe flag concerned of the *«* information management DB12 will 
be set as an invalid (S302). In addition, this processing may be processed by interruption to key decision processing. 

[0050] Since a change in the urgent lock which makes an invalid the usual key of a key version with which the 
unauthorized use was revealed, and each mobile station holds can be processed on-line according to this example 
the usual employment of a system is maintainable, preventing expansion of the damage by unauthorized use 
moreover - since the data of an urgent key are changed without communicating mutually - high - security 
correspondence is attained. s y 

[0051] For example, in the ETC system of a turnpike, since the renewal of a version of the usual mobile station 
ser ves as the time of constant ** etc.. there is a possibility that it may be driven into a system stop by expansion 
of the damage depended unjustly. However, according to this example, since automatic processing of the change in 
an urgent lock is usually earned out on-line during the communication link of use, a system and a user do not have a 
burden and it is user-friendly. 

[0052] Although the symmetry key was used for the cryptographic key of the cryptocommunication of a mobile 
station and a fixed station ,n the above example, the mobile communication of this invention is realizable for a 
cryptographic key with an unsymmetrical key or the algorithm key into which cryptographic algorithm is changed 
[0053] Moreover, in the symmetry key cipher system mentioned above, the symmetry key which usually becomes a 
mobile station and a fixed station from a key and an urgent key beforehand is prepared. However, the fixed station 
usually installs only the key, and ,t ,s added to the key application modification directions to a fixed station from high 
crder equipment, and you may make it transmit the urgent key of the version concerned. Thereby, discovery of the 
urgent key by the theft ,n a fixed station etc. can be prevented. In addition, since the risk of leakage by the 
communication l,nk of the key information from high order equipment follows, it considers as temporary immediate 
steps, and the renewal of a version of a mobile station is radically needed 
[0054] 

r Ef f e ct of the Invention] Since according to the mobile correspondence procedure of this invention the version of 
t h e communication link demand of a mobile station is checked and the key used can be determined for fixed-station 
itself when sharing two or more versions of a common key with a fixed station and two or more mobile stations the 
communication link with a mobile station can be started promptly. 

[0055] Moreover, since the efficiency of the change in the alternative lock which each mobile station holds can be 
carn ed out in on-line processing, without transmitting a cryptographic key when an unauthorized use is revealed 
sin ^«i a H S iT m > y C ' P M Ste T, iS ad ° Pted ' exDansion of the da ™ge of an unauthorized use can be prevented 
[0056] High security is securable while a system configuration simplifies, since a key server is made unnecessary 
according to the mobile communication system of this invention. Moreover, since automatic processing of the key 
sW itch m emergency is carried out while communicating, it is user-friendly. 
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* NOTICES * 

JPO and NCIPI are not responsible for any 
damages caused by the use of this translation. 

1. This document has been translated by computer. So the translation may not reflect the original precisely. 

2. **** shows the word which can not be translated. 
3. In the drawings, any words are not translated. 



DESCRIPTION OF DRAWINGS 



[Brief Description of the Drawings] 

[Drawing 1] The block diagram of the mobile communication system by one example of this invention. 

[Drawing 2] The data block diagram of the key information DB on the mobile station using a symmetry key cipher 

system. 

[Drawing 3] The data block diagram of the key management information DB of a fixed station using a symmetry key 
cipher system. 

[Drawing 4] The block diagram of the key information DB which manages the key used under message of a fixed 
station. 

[Drawing 5] The flow Fig. showing decision processing of the key used by the symmetry key cipher system of a 
mobile station. 

[Drawing 6] The flow Fig. showing decision processing of the key used by the symmetry key cipher system of a fixed 
station. 

[Drawing 7] The explanatory view showing processing and data flow of the usual key decision between a mobile 
station and a fixed station. 

[Drawing 8] The explanatory view showing processing and data flow of renewal of key urgent between a mobile 
station and a fixed station. 

[Drawing 9] The flow Fig. showing usual key nullification processing of a fixed station with high order directions. 
[Drawing 10] The block diagram of the outline of the electronic toll collection system (ETC) of a turnpike. 
[Drawing 1 1] The explanatory view of the conventional mobile communication system in which the key decision 
actuation by the key server inquiry is shown. 
[Description of Notations] 

1 [ — DB for a communication link 5 / — Key management processing section, ] — A mobile station, 2 — A fixed 
station, 3 — A channel, 4 6 — The key information DB (mobile station side), 7 — The encryption processing 
section, 8 — Communications processing section, 9 — The decryption processing section, 10 — The control 
processing section (mobile station side), 11 — DB for a communication link, 12 — The key information management 
DB, 13 — The key information DB (fixed-station side), 14 — Key supervisory control processing section, 16 [ — A 
symmetry key, 24 / — An effective flag, 31 / — A mobile station identifier, 32 / — The key used, 100 / — A fixed 
station, 110/ — An antenna, 200 / — An exclusive lane, 210 / — A communications area, 300 / — A car, 310 / — 
Mobile station. ] — The control processing section (fixed-station side), 21 — A key version, 22 — A key application, 
23 
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